Follow

ufw (a firewall) uses rule numbers when you want to, say, delete a rule. Does it display the rule numbers when you list them with ufw status?

No, of course not, that would be too easy (you’d win the game right away, where’s the fun in that?)

So, instead you have to type ufw status numbered.

Remember kids, beautiful defaults are for newbs and losers. Real gamers play in hard mode.

*sigh*

*walks away mumbling*

@aral Linux is great

.....

.when you have set up all the three million aliases so stuff makes any sense

@aral @JonossaSeuraava And then you walk into a new #linux installation and can’t remember any of the commands because you’ve been using custom aliases for so long.

@aral This is one of my biggest pet peeves in Linux software, a ton of things do things in needlessly complicated ways for seemingly no reason

Then like half the time it's combined with absolutely garbage tier documentation too

I wouldn't put it past *certain* Linux user groups to do that intentionally too, although I think in most cases it's just incompetent UX design

@aral To add to that, if you want to delete a few rules somewhere in the middle, you need to check the numbers after every delete, because they now have a different number.🤪

@aral Well, @aral, if you don't like ufw, why don't you go back to editing iptables by hand? :thisisfine:

@aral i recently dove into nftables and have to say - despite NFT being part of the name -. It's reaaally nice. Reminds me a bit of ferm which i was using before. Not sure how well it plays with container networking though... (i set it up on my router)

@jokke @aral definitely nftables is way better if you get into more serious networking, possibly setting up servers. Ufw is fine for a computer which just needs to block incoming traffic

@frox @aral yeah but even for simple input blocking it's pretty straight forward.

@aral One day I'll have to give a talk about the UI of early mechanical calculators contrasted with modern UI design. These calculators were nothing like modern ones, it was basically a direct front-end to the machinery that made the calculations possible. As a result there was about 3 or 4 families of UI, each distinct (because of patents) and each requiring you study a manual to do even simple calculations. #mechanicalcalculators #calculators #ui #mechanicalcomputers

@aral I never understood why every Linux setup guide has a similar list of things you have to do.

It’s as if they’re trying to keep certain people off the system.

@ar.al🌻 Isn't ufw just a fancy cli to iptables/nftables? Creating rules for iptables/nftables is the real PITA TBH x_x
i have also been looking for a solid alternative for configuring the Linux Firewall for a long time and have become happy with shorewall.

@aral In UFW you can just add "delete" before the actual rule and it will delete it

@aral I want to try to use Firewalld but it confuses the hell out of me lol

@gregandcin I’m in self-inflicted NAT routing hell. The interfaces of these tools were designed for robots not human beings.

@ar.al🌻 I realize this answer is not directed to me but.. I have to agree 😂

@aral Okay, but whether this is desirable is debatable and you can simply fix this problem with an alias.

@aral Also afaik you can't even delete multiple rules at the same time? So it's a loop of ufw status numbered delete and then get the new numbers 🙄

@aral @fuomag9 you can delete the rule with largest number and counting down to the smallest, then you don't have to check for changed numbers. 100% annoying, though!

@jayemach @aral I'd probably make an error and delete a wrong rule sooner or later 😂

Sign in to participate in the conversation
Aral’s Mastodon

This is my personal Mastodon.